Digital Threat Digest Insights Careers Let's talk

Senior Information Security Consultant (QSA)



We are looking for a Senior Information Security Consultant to join our Information Assurance team.

Our Information Assurance consultants help clients to ensure the confidentiality, integrity, and availability of their organisation's data and information. As well as implementing technical controls, we recommend processes and procedures, which have an equally important role in limiting risk. We support our clients to achieve and maintain information security standards and frameworks, including ISO 27001, PCI DSS, NIST Cyber Security Framework (CSF), Business Continuity and data protection regulations.

What you’ll be doing
  • Engaging confidently with clients and colleagues, delivering consultative and advisory expertise, within a pre-sales and delivery capacity.
  • Providing hands-on PCI DSS compliance and consultancy services across a range of requirements for clients.
  • Operating as a subject matter expert and engaging confidently with clients relating to solving Information Security Governance, Risk, and Compliance problems.
  • Supporting the growth of PGI’s consultancy services in the UK and internationally in line with industry and globally recognised standards.
  • Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations.
  • Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices.
On day one you will bring
  • Proven people and relationship management skills.
  • Demonstrable experience providing Information Assurance consultancy.
  • Experience as a current Qualified Security Assessor (QSA).
  • PCI SSC Qualified Security Assessor expertise and experience.
  • Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR/DPA.
  • ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Cloud Security or business continuity accreditations are highly desirable.
  • CISM or CISA qualifications are highly desirable.
  • Experience in conducting risk assessments and forming risk management policies.
  • Experience in assessing an organisation’s cyber security maturity as well as remediation strategies.
  • Excellent verbal and written communication skills, with the ability to present to clients and senior business stakeholders.
  • A positive approach to problem-solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines.
  • Examples of competencies we seek from candidates applying for this role include:
  • Engage directly with clients / external parties
  • Explain how the law interacts with the role and how it applies
  • Resolve an external-facing problem in a professional way, knowing when to escalate
  • Plan a simple client engagement/project (Delivery and Support)
  • Quote for a simple client engagement/project (Delivery)
  • Write a proposal for a simple client engagement/project (Delivery)
  • Hire for roles junior to this grade.
  • Write a business case.
  • Quality control of work before external submission
  • Develop third-party relationships
  • Mentor and develop other team members
  • Demonstrate and champion application of PGI internal processes
  • Monitor capacity and workload and interpret impact for business function
  • Lean towards a Career Pathway with support, taking up opportunities when offered
  • Set clear expectations for colleagues and team members when collaborating
  • Review third-party delivery work, setting quality and performance expectations, and feeding back necessary information
  • Delegate responsibility during absence, clearly communicating plans to all necessary stakeholders
  • Write a learning and development plan for direct reports
  • Self-assess performance against PGI Core Behaviours, Competencies and Skills
  • Work independently and use initiative
  • Prioritise and manage workloads effectively
  • Collaborate effectively with Project Success colleagues to ensure projects are delivered on time and on budget
  • Determine project/opportunity gross profit margin calculations.
About PGI

We empower organisations and nations to counter digital threats. Our internationally acclaimed team of digital threat experts and thought leaders work at the cutting-edge of threat detection, continually scanning the horizon for next-generation risks. We use technology to support deep human insight, enabling us to build long-range resilience for clients.​​

We are trusted worldwide by governments, global NGOs and corporations.​

Diversity, Equity and Inclusion at PGI

As a British company which operates internationally, we draw strength from the diversity of our people. Without our diverse team, we couldn’t do the work we do. We are involved in projects across 80+ geographies, our people speak 25+ languages and come from a variety of backgrounds. By hiring and cultivating a diverse, equitable and inclusive workforce, we can uphold values that enable every member of the team to thrive, while delivering novel solutions to novel problems.

Accessibility at PGI

Every individual has different requirements, so we are committed to implementing reasonable adjustments to mitigate physical and non-physical barriers in the workplace.

We strive to make the recruitment process as accessible as possible, but if you have any questions or concerns, please get in touch.

To apply, please send your CV to

Please note: We are not accepting applications or speculative profiles from any recruitment agencies. If we require additional resource, we will reach out to you.